CVE-2020-13866
HIGHWinGate 9.4.1.5998 - Incorrect Permission Assignment for Critical Resource
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2020-13866. PoCs published by hyp3rlinx.
AI-analyzed exploit summary This advisory describes an insecure folder permissions vulnerability in WinGate 9.4.1.5998, where authenticated users can replace WinGate.exe with a trojan to achieve privilege escalation to SYSTEM upon restart.
Description
WinGate v9.4.1.5998 has insecure permissions for the installation directory, which allows local users to gain privileges by replacing an executable file with a Trojan horse.
Exploits (1)
exploitdb
WRITEUP
by hyp3rlinx · textlocalwindows
https://www.exploit-db.com/exploits/48573
This advisory describes an insecure folder permissions vulnerability in WinGate 9.4.1.5998, where authenticated users can replace WinGate.exe with a trojan to achieve privilege escalation to SYSTEM upon restart.
Classification
Writeup 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target:
WinGate 9.4.1.5998
Auth required
Prerequisites:
Local access · Authenticated user privileges
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/157958/WinGate-9.4.1.5998-Insecure-Permissions-Privilege-Escalation.html
Third Party Advisory x_refsource_misc
http://hyp3rlinx.altervista.org/advisories/WINGATE-INSECURE-PERMISSIONS-LOCAL-PRIVILEGE-ESCALATION.txt
Third Party Advisory mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2020/Jun/11
Scores
CVSS v3
7.8
EPSS
0.0107
EPSS Percentile
60.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-732
Status
published
Products (1)
qbik/wingate
9.4.1.5998
Published
Jun 08, 2020
Tracked Since
Feb 18, 2026